From owner-freebsd-questions Wed Feb 7 10:57:27 2001 Delivered-To: freebsd-questions@freebsd.org Received: from mail.EUnet.pt (individual.EUnet.pt [193.126.4.67]) by hub.freebsd.org (Postfix) with ESMTP id 9189037B401 for ; Wed, 7 Feb 2001 10:57:08 -0800 (PST) Received: from speedy (d005.SJMadeira.EUnet.pt [193.126.34.133]) by mail.EUnet.pt (8.9.3/8.9.3) with SMTP id SAA01266 for ; Wed, 7 Feb 2001 18:57:05 GMT Message-Id: Date: Wed, 7 Feb 2001 18:57:05 GMT X-Priority: 3 From: "J. Miguel Gonçalves" X-Mailer: Mail Warrior To: questions@freebsd.org MIME-Version: 1.0 Subject: Router (Firewall) Security Content-Type: Text/Plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8Bit X-Mailer-Version: v3.57 (r) Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hi! I am about to install a FreeBSD 4.2 box (DX4 @ 100 MHz, 12 MB RAM, 210 MB disk) as a cable router/firewall for a small network. I will disable all network services and the maintenance is going to be done over a serial console. It is immossible for an external attacker to reach the firewall machine and execute commands, right? The only thing he can do is circunvert the firewall and penetrate the internal network, right? Sincerely, ... J. Miguel Gonçalves http://jgoncalves.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message